Create an Input

After you complete the configuration for your Tenable Add-On for Splunk, you must create the input. The following process outlines input creation if you have a deployment with Tenable Web App Scanning Add-on for Splunk.

To create an input:

  1. In the left navigation bar, click or Tenable Web App Scanning Add-on for Splunk.

  2. Click the Inputs tab.

  3. Click Create New Input.

    The Add Tenable Web App Scanning Add-on for Splunk window appears:

  4. Provide the following information.

    Note: If you don't use the default index, you must update the Tenable Macro.

    Tenable Web App Scanning

    Input Parameters Description Required
    Name The unique name for each Tenable data input.

    Yes
    Interval

    The interval parameter specifies when the input restarts to perform the task again (in seconds). The interval amount must be between 300 and 86400.

    Yes
    Index The index in which to store Tenable Vulnerability Management data.

    Yes
    Start Time

    The date and time to start collecting data. If you leave this field blank, the integration collects all historical data.

    Note: Uses the YYYY-MM-DD hh:mm:ss format.

    No
    Tenable Vulnerability Management Domain Splunk pulls data from this Tenable account.

    Yes
    Tenable Vulnerability Management Access Key Tenable Vulnerability Management API access key.

    Yes
    Tenable Vulnerability Management Secret Key

    Your Tenable Vulnerability Management API secret key

    Yes
  5. Click Add to create the input.